Privacy Policy

This Privacy Policy governs the collection, processing, storage, and protection of personal information by our online gaming platform operating in India. We are committed to maintaining the highest standards of data protection and ensuring compliance with applicable Indian laws, including the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. By accessing or using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. Last updated: January 27, 2026.

1. Information Collection and Categories

Our platform collects various types of personal information necessary for providing secure and efficient gaming services. The collection process adheres to Indian data protection regulations and industry best practices for online gaming platforms.

  1. Personal identification information including full name, date of birth, gender, and government-issued identification numbers such as Aadhaar, PAN, or passport details
  2. Contact information encompassing email addresses, mobile phone numbers, residential addresses, and postal codes
  3. Financial data including bank account details, payment card information, transaction histories, and digital wallet credentials
  4. Gaming activity data such as game preferences, betting patterns, session durations, win/loss records, and bonus utilisation
  5. Technical information including IP addresses, device identifiers, browser types, operating systems, and location data
  6. Communication records including customer support interactions, chat logs, email correspondence, and feedback submissions
  7. Identity verification documents such as photographs, address proofs, and income verification materials

We collect this information through direct user input during registration, automated systems during platform usage, third-party verification services, and customer support interactions. All collection methods comply with Indian legal requirements and are designed to minimise data collection while ensuring platform security and regulatory compliance.

2. Data Processing Purposes and Legal Basis

The processing of personal information on our platform serves multiple legitimate purposes essential for delivering comprehensive gaming services while maintaining regulatory compliance and user security. Each processing activity is conducted under specific legal grounds recognised by Indian law.

  1. Account creation and management to establish user profiles, verify identities, and maintain accurate customer records
  2. Transaction processing and financial management including deposits, withdrawals, bonus credits, and payment reconciliation
  3. Regulatory compliance and anti-money laundering measures to meet obligations under Indian gaming and financial regulations
  4. Fraud prevention and security monitoring to protect users and the platform from unauthorised access and malicious activities
  5. Customer support provision to resolve queries, handle complaints, and improve service quality
  6. Marketing communications and promotional activities to inform users about new games, bonuses, and platform updates
  7. Platform improvement and analytics to enhance user experience, optimise game performance, and develop new features

Our legal basis for processing includes contractual necessity for service provision, legal compliance requirements under Indian law, legitimate business interests for platform security and improvement, and user consent for marketing activities. We ensure that all processing activities are proportionate, necessary, and aligned with stated purposes.

3. Data Sharing and Third-Party Disclosures

We maintain strict controls over data sharing and only disclose personal information to authorised third parties under specific circumstances. All sharing arrangements include comprehensive data protection agreements and security requirements.

  1. Payment processors and financial institutions for transaction processing, identity verification, and fraud prevention services
  2. Regulatory authorities and law enforcement agencies when required by Indian law or in response to valid legal requests
  3. Identity verification services and KYC providers to comply with regulatory requirements and prevent fraudulent activities
  4. Customer support service providers who assist in handling user queries and technical support requirements
  5. Marketing service providers for communications management, subject to user consent and opt-out mechanisms
  6. Technical service providers including hosting services, security monitoring, and platform maintenance contractors
  7. Legal advisors and auditors for compliance assessments, legal proceedings, and regulatory reporting requirements

We do not sell personal information to third parties for commercial purposes. All third-party arrangements include strict confidentiality provisions, data processing limitations, and security requirements. International data transfers, if any, are conducted with appropriate safeguards and legal protections in accordance with Indian data protection regulations.

4. Security Measures and Data Protection

Our platform implements comprehensive security measures designed to protect personal information against unauthorised access, alteration, disclosure, or destruction. These measures reflect industry best practices and regulatory requirements for online gaming platforms in India.

  1. Advanced encryption technologies including SSL/TLS protocols for data transmission and AES encryption for data storage
  2. Multi-factor authentication systems for user accounts and administrative access to prevent unauthorised login attempts
  3. Regular security audits and penetration testing to identify vulnerabilities and maintain system integrity
  4. Access controls and privilege management ensuring that only authorised personnel can access personal information
  5. Secure data centres with physical security measures, environmental controls, and backup systems
  6. Employee training programmes covering data protection responsibilities, security protocols, and incident response procedures
  7. Incident response plans for data breaches including notification procedures and remediation measures

Despite implementing robust security measures, we acknowledge that no system is completely secure. Users are encouraged to maintain strong passwords, enable available security features, and promptly report any suspected security incidents. We continuously monitor and update our security infrastructure to address emerging threats and maintain protection standards.

5. User Rights and Data Control

Users possess specific rights regarding their personal information under Indian data protection laws. We provide mechanisms for exercising these rights while maintaining platform security and regulatory compliance requirements.

  1. Access rights to obtain copies of personal information we hold, including details about processing activities and data sharing
  2. Correction rights to update or rectify inaccurate personal information and ensure data accuracy
  3. Deletion rights to request removal of personal information, subject to legal retention requirements and legitimate business needs
  4. Consent withdrawal for marketing communications and non-essential data processing activities
  5. Data portability rights to receive personal information in structured formats for transfer to other service providers
  6. Objection rights to certain processing activities, particularly those based on legitimate interests rather than legal requirements
  7. Restriction rights to limit processing in specific circumstances while maintaining essential account functions

To exercise these rights, users can submit requests through designated channels including customer support systems and privacy contact forms. We respond to valid requests within timeframes prescribed by Indian law, typically within thirty days. Some requests may require identity verification to prevent unauthorised access to personal information.

6. Data Retention and Disposal

Our data retention practices balance user privacy rights with legal compliance requirements and legitimate business needs. Retention periods vary depending on data types, legal obligations, and operational requirements specific to online gaming platforms in India.

  1. Account information and transaction records are retained for seven years following account closure to comply with financial regulations and audit requirements
  2. Identity verification documents are maintained for five years to meet anti-money laundering and regulatory compliance obligations
  3. Gaming activity logs and session data are kept for three years for dispute resolution and regulatory reporting purposes
  4. Marketing communication records are retained for two years or until consent withdrawal, whichever is shorter
  5. Technical logs and security monitoring data are preserved for one year to maintain platform security and investigate incidents
  6. Customer support communications are kept for two years to ensure service quality and resolve ongoing issues
  7. Aggregated and anonymised data may be retained indefinitely for statistical analysis and platform improvement purposes

When retention periods expire, we implement secure disposal procedures including data deletion, anonymisation, or destruction depending on data types and storage methods. Users may request early deletion of certain data categories, subject to legal retention requirements and ongoing regulatory obligations.

7. Contact Information and Policy Updates

We maintain open communication channels for privacy-related inquiries and provide regular updates to this Privacy Policy to reflect changes in our practices, legal requirements, or platform features.

  1. Privacy inquiries can be submitted through our dedicated privacy contact form available in the user account settings
  2. Customer support representatives are trained to handle data protection questions and can escalate complex issues to our privacy team
  3. Written correspondence regarding privacy matters can be sent to our registered office address published on the platform
  4. Data subject rights requests should include sufficient information for identity verification and specific details about the requested action
  5. Complaints about data processing can be directed to our internal privacy team or relevant Indian regulatory authorities
  6. Emergency privacy concerns, such as suspected data breaches affecting user accounts, should be reported immediately through priority channels
  7. Policy updates are communicated through email notifications, platform announcements, and prominent notices during login processes

This Privacy Policy may be updated periodically to reflect changes in legal requirements, platform features, or data processing practices. Material changes will be communicated to users with appropriate notice periods, and continued use of our services following such notifications constitutes acceptance of the updated policy. We recommend regular review of this document to stay informed about how we protect and process personal information in accordance with Indian laws and international best practices for online gaming platforms.